Home page logo

nanog logo nanog mailing list archives

Re: Spoofing ASNs (Re: SNMP DDoS: the vulnerability you might not know you have)
From: Christopher Morrow <morrowc.lists () gmail com>
Date: Sun, 11 Aug 2013 12:02:52 -0400

On Sun, Aug 11, 2013 at 11:40 AM, Florian Weimer <fw () deneb enyo de> wrote:

Apparently, they're implementing DNS proxy by destination-NATting, and
because they listen also on the WAN interface, they get the source
address wrong.

This is quite scary.

which part? the fact that most NAT implementations on CPE are crap? or
the spoofing bit?

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]